Apple Release Emergency Update To Fix Zero-day Used To Hack Macs, Watches

Apple has released emergency updates to fix a zero-day vulnerability that can be exploited by attackers to target Mac and Apple Watch devices.

The bug, identified as CVE-2022-22675, is an out-of-bounds bug in the AppleAVD that allows apps to execute arbitrary code with kernel privileges. Apple has fixed the bug in macOS Big Sur 11.6, watchOS 8.6, and tvOS 15.5 with improved bounds checking.

Apple said in its security advisory released Monday that there are reports that the bug “may have been actively exploited,” but the company failed to release additional information about the attacks. By withholding information, updates can reach as many devices as possible before attackers pick up the details of the zero-day vulnerability.

Affected devices are Apple Watch Series 3 or later, Macs with macOS Big Sur, Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD.

While the zero-day vulnerability is only used in targeted attacks, users are strongly advised to install the latest macOS and watchOS security updates as soon as possible to block attack attempts.

The sources for this piece include an article in BleepingComputer.

Apple Release Emergency Update To Fix Zero-day Used To Hack Macs, Watches

Top Stories

Malicious Chrome extension targets Meta business accounts

Bitcoin meltdown wipes out Trump-era gains

Taiwan rejects U.S. push to relocate chipmaking production

OpenAI and Anthropic go head-to-head with same-day AI model launches

Wikipedia positions itself as a defence against AI slop

French prosecutors raid X offices as Grok investigation widens

Related Articles

Malicious Chrome extension targets Meta business accounts

Workday CEO steps down amid cuts, co‑founder returns

OpenAI’s ChatGPT focus triggers exit of senior-level employees

Canada’s Fusion flagship General Fusion set to go public in $1B SPAC deal

TND Newsdesk

TND Newsdesk

Jim Love

Follow Us

Popular categories

Tech News Delivered